Publishing details

Published on 2023-06-01
Copied from ubuntu jammy in PPA for Ubuntu Security Proposed

Changelog

dbus (1.12.20-2ubuntu4.1) jammy-security; urgency=medium

  * SECURITY UPDATE: Assertion failure in dbus-marshal-validate
    - debian/patches/CVE-2022-42010.patch: Check brackets in signature nest
      correctly
    - CVE-2022-42010
  * SECURITY UPDATE: Out-of-bound access in dbus-marshal-validate
    - debian/patches/CVE-2022-42011.patch: Validate length of arrays of
      fixed-length items
    - CVE-2022-42011
  * SECURITY UPDATE: Out-of-bound access in dbus-marshal-byteswap
    - debian/patches/CVE-2022-42012.patch: Byte-swap Unix fd indexes if needed
    - CVE-2022-42012

 -- Nishit Majithia <email address hidden>  Tue, 25 Oct 2022 18:45:07 +0530

Available diffs

diff from 1.12.20-2ubuntu2 (in Ubuntu) to 1.12.20-2ubuntu4.1 (4.0 KiB)
diff from 1.12.20-2ubuntu4 (in Ubuntu) to 1.12.20-2ubuntu4.1 (3.7 KiB)

Builds

Package files

dbus_1.12.20-2ubuntu4.1.debian.tar.xz (63.7 KiB)
dbus_1.12.20-2ubuntu4.1.dsc (3.2 KiB)
dbus_1.12.20.orig.tar.gz (2.0 MiB)